- Update-java-ca-certificates — Small utility to convert the system trust store to a system Java KeyStore
- update-java-ca-certificates
- Details
- Repository
- Links
- README ¶
- update-java-ca-certificates
- Usage
- Building
- Paths
- Documentation ¶
- Saved searches
- Use saved searches to filter your results more quickly
- License
- swisscom/update-java-ca-certificates
- Name already in use
- Sign In Required
- Launching GitHub Desktop
- Launching GitHub Desktop
- Launching Xcode
- Launching Visual Studio Code
- Latest commit
- Git stats
- Files
- README.md
- About
- Update-java-ca-certificates — Small utility to convert the system trust store to a system Java KeyStore
Update-java-ca-certificates — Small utility to convert the system trust store to a system Java KeyStore
This small utility takes care of creating a system-wide trust store starting from your Linux CA trust store.
This command is supposed to be run after running update-ca-certificates (8) , so that the Java Keystore is in sync with the system trust store.
The issue that this tool is trying to solve is already solved by Arch Linux’s update-ca-trust (8). Sadly not all the Linux distributions have solved the issue (yet), thus this is a tool to help standardize the mess that’s currently out there in terms of path standardization and ca-certificates location.
Usage: update-java-ca-certificates [--debug] [--force] [--certificate-bundle CERTIFICATE-BUNDLE] [--password PASSWORD] FILE Positional arguments: FILE Options: --debug, -D --force, -f --certificate-bundle CERTIFICATE-BUNDLE, -c CERTIFICATE-BUNDLE [default: /etc/ssl/certs/ca-certificates.crt] --password PASSWORD, -p PASSWORD [default: changeit] --help, -h display this help and exit update-java-ca-certificates -c /etc/ssl/certs/ca-certificates.crt /etc/ssl/java/cacerts keytool -list -keystore /etc/ssl/java/cacerts -storepass changeit Keystore type: JKS Keystore provider: SUN Your keystore contains 137 entries 02ed0eb28c14da45165c566791700d6451d7fb56f0b2ab1d3b8eb070e56edff5, 6 Jan 2022, trustedCertEntry, Certificate fingerprint (SHA-256): 02:ED:0E:B2:8C:14:DA:45:16:5C:56:67:91:70:0D:64:51:D7:FB:56:F0:B2:AB:1D:3B:8E:B0:70:E5:6E:DF:F5 (. ) update-java-ca-certificates
This package is not in the latest version of its module.
Details
- Valid go.mod file The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
- Redistributable license Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
- Tagged version Modules with tagged versions give importers more predictable builds.
- Stable version When a project reaches major version v1 it is considered stable.
- Learn more
Repository
Links
README ¶
update-java-ca-certificates
This small utility takes care of creating a system-wide trust store starting from your Linux CA trust store.
This command is supposed to be run after running update-ca-certificates (8) , so that the Java Keystore is in sync with the system trust store.
The issue that this tool is trying to solve is already solved by Arch Linux’s update-ca-trust (8). Sadly not all the Linux distributions have solved the issue (yet), thus this is a tool to help standardize the mess that’s currently out there in terms of path standardization and ca-certificates location.
Usage
Usage: update-java-ca-certificates [--debug] [--force] [--certificate-bundle CERTIFICATE-BUNDLE] [--password PASSWORD] FILE Positional arguments: FILE Options: --debug, -D --force, -f --certificate-bundle CERTIFICATE-BUNDLE, -c CERTIFICATE-BUNDLE [default: /etc/ssl/certs/ca-certificates.crt] --password PASSWORD, -p PASSWORD [default: changeit] --help, -h display this help and exit Example
update-java-ca-certificates -c /etc/ssl/certs/ca-certificates.crt /etc/ssl/java/cacerts Result
keytool -list -keystore /etc/ssl/java/cacerts -storepass changeit Keystore type: JKS Keystore provider: SUN Your keystore contains 137 entries 02ed0eb28c14da45165c566791700d6451d7fb56f0b2ab1d3b8eb070e56edff5, 6 Jan 2022, trustedCertEntry, Certificate fingerprint (SHA-256): 02:ED:0E:B2:8C:14:DA:45:16:5C:56:67:91:70:0D:64:51:D7:FB:56:F0:B2:AB:1D:3B:8E:B0:70:E5:6E:DF:F5 (. ) Building
Requirements
Steps
make ./bin/update-java-ca-certificates -h Paths
This tool assumes the directories are set up according to what update-ca-trust (8) uses.
/etc/ssl/certs
This directory should contain individual CA certificates trusted for TLS authentication usage. The format to be used is the BEGIN CERTIFICATE / END CERTIFICATE one.
If you are able to parse the certificate with:
openssl x509 -in /etc/ssl/certs/your-certificate.pem -noout -text /etc/ssl/ca-certificates.crt
This file contains a bundle that is updated by update-ca-trust / update-ca-certificates .
/etc/ssl/java/cacerts
This file contains the trust anchor for Java. Its format is the Java Key Store ( JKS ).
Documentation ¶
There is no documentation for this package.
Saved searches
Use saved searches to filter your results more quickly
You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session.
Small utility to convert the system trust store to a system Java KeyStore
License
swisscom/update-java-ca-certificates
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Name already in use
A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
Sign In Required
Please sign in to use Codespaces.
Launching GitHub Desktop
If nothing happens, download GitHub Desktop and try again.
Launching GitHub Desktop
If nothing happens, download GitHub Desktop and try again.
Launching Xcode
If nothing happens, download Xcode and try again.
Launching Visual Studio Code
Your codespace will open once ready.
There was a problem preparing your codespace, please try again.
Latest commit
Git stats
Files
Failed to load latest commit information.
README.md
This small utility takes care of creating a system-wide trust store starting from your Linux CA trust store.
This command is supposed to be run after running update-ca-certificates (8) , so that the Java Keystore is in sync with the system trust store.
The issue that this tool is trying to solve is already solved by Arch Linux’s update-ca-trust (8). Sadly not all the Linux distributions have solved the issue (yet), thus this is a tool to help standardize the mess that’s currently out there in terms of path standardization and ca-certificates location.
Usage: update-java-ca-certificates [--debug] [--force] [--certificate-bundle CERTIFICATE-BUNDLE] [--password PASSWORD] FILE Positional arguments: FILE Options: --debug, -D --force, -f --certificate-bundle CERTIFICATE-BUNDLE, -c CERTIFICATE-BUNDLE [default: /etc/ssl/certs/ca-certificates.crt] --password PASSWORD, -p PASSWORD [default: changeit] --help, -h display this help and exit update-java-ca-certificates -c /etc/ssl/certs/ca-certificates.crt /etc/ssl/java/cacerts keytool -list -keystore /etc/ssl/java/cacerts -storepass changeit Keystore type: JKS Keystore provider: SUN Your keystore contains 137 entries 02ed0eb28c14da45165c566791700d6451d7fb56f0b2ab1d3b8eb070e56edff5, 6 Jan 2022, trustedCertEntry, Certificate fingerprint (SHA-256): 02:ED:0E:B2:8C:14:DA:45:16:5C:56:67:91:70:0D:64:51:D7:FB:56:F0:B2:AB:1D:3B:8E:B0:70:E5:6E:DF:F5 (. ) make ./bin/update-java-ca-certificates -h This tool assumes the directories are set up according to what update-ca-trust (8) uses.
This directory should contain individual CA certificates trusted for TLS authentication usage. The format to be used is the BEGIN CERTIFICATE / END CERTIFICATE one.
If you are able to parse the certificate with:
openssl x509 -in /etc/ssl/certs/your-certificate.pem -noout -text This file contains a bundle that is updated by update-ca-trust / update-ca-certificates .
This file contains the trust anchor for Java. Its format is the Java Key Store ( JKS ).
About
Small utility to convert the system trust store to a system Java KeyStore
Update-java-ca-certificates — Small utility to convert the system trust store to a system Java KeyStore
This small utility takes care of creating a system-wide trust store starting from your Linux CA trust store.
This command is supposed to be run after running update-ca-certificates (8) , so that the Java Keystore is in sync with the system trust store.
The issue that this tool is trying to solve is already solved by Arch Linux’s update-ca-trust (8). Sadly not all the Linux distributions have solved the issue (yet), thus this is a tool to help standardize the mess that’s currently out there in terms of path standardization and ca-certificates location.
Usage: update-java-ca-certificates [--debug] [--force] [--certificate-bundle CERTIFICATE-BUNDLE] [--password PASSWORD] FILE Positional arguments: FILE Options: --debug, -D --force, -f --certificate-bundle CERTIFICATE-BUNDLE, -c CERTIFICATE-BUNDLE [default: /etc/ssl/certs/ca-certificates.crt] --password PASSWORD, -p PASSWORD [default: changeit] --help, -h display this help and exit update-java-ca-certificates -c /etc/ssl/certs/ca-certificates.crt /etc/ssl/java/cacerts keytool -list -keystore /etc/ssl/java/cacerts -storepass changeit Keystore type: JKS Keystore provider: SUN Your keystore contains 137 entries 02ed0eb28c14da45165c566791700d6451d7fb56f0b2ab1d3b8eb070e56edff5, 6 Jan 2022, trustedCertEntry, Certificate fingerprint (SHA-256): 02:ED:0E:B2:8C:14:DA:45:16:5C:56:67:91:70:0D:64:51:D7:FB:56:F0:B2:AB:1D:3B:8E:B0:70:E5:6E:DF:F5 (. )